lightning | 48f9471c20316b295704e6f8feb2196dd619799edec5835734fc24051f45c5b7 | Triage

Submit
Reports

Overview

overview

Static

static

48f9471c20...45c5b7

ubuntu-18.04-amd64

Resubmissions

11-08-2022 15:33

220811-szns3sbcb4 10

25-07-2022 16:57

220725-vglxwafbh5 5

Sharing

General

Target

48f9471c20316b295704e6f8feb2196dd619799edec5835734fc24051f45c5b7
Size

78KB
Sample

220811-szns3sbcb4
MD5

204728fb1878b9f4f83c110e7cf6b5b5
SHA1

cce00f83b70839ea9d42f2fe4ec773e6014ef00f
SHA256

48f9471c20316b295704e6f8feb2196dd619799edec5835734fc24051f45c5b7
SHA512

43df37b151c0ec7fa6f0f0ca185eb7666f256895b9fab0b62fc1f8666a0ad440c6f96569c3fa62b986eff03f980190cd5b484567f7f9b3f16e5cda348a74316c

Score

10^/10

lightning backdoor linux rootkit

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

48f9471c20316b295704e6f8feb2196dd619799edec5835734fc24051f45c5b7

Resource

ubuntu1804-amd64-en-20211208

lightning backdoor rootkit

ubuntu-18.04-amd64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  48f9471c20316b295704e6f8feb2196dd619799edec5835734fc24051f45c5b7
- Size
  
  78KB
- MD5
  
  204728fb1878b9f4f83c110e7cf6b5b5
- SHA1
  
  cce00f83b70839ea9d42f2fe4ec773e6014ef00f
- SHA256
  
  48f9471c20316b295704e6f8feb2196dd619799edec5835734fc24051f45c5b7
- SHA512
  
  43df37b151c0ec7fa6f0f0ca185eb7666f256895b9fab0b62fc1f8666a0ad440c6f96569c3fa62b986eff03f980190cd5b484567f7f9b3f16e5cda348a74316c
Score

10^/10

lightning backdoor rootkit
- Lightning Framework
  Linux modular framework with the ability to install rootkits, first seen in July 2022.
  backdoor rootkit lightning
- Writes file to tmp directory
  Malware often drops required files in the /tmp directory.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

lightningbackdoorrootkit

© 2018-2024

Terms | Privacy